8 matches found
CVE-2026-53283
CVE-2026-53283 concerns the Linux kernel AMD IOMMU driver. The issue arises when the inlined check path in __rlookup_amd_iommu() performs an out-of-bounds read on rlookup_table[devid] for a PCI device whose BDF isn’t described by IVRS. Prior to the commit that changed kvalloc() usage, the over-re...
PT-2026-7440
Improper input validation in IOMMU could allow a malicious hypervisor to reconfigure IOMMU registers resulting in loss of guest data integrity...
kernel: tls: wait for pending async decryptions if tls_strp_msg_hold fails
A vulnerability was found in tlsdecryptsg in net/tls/tlssw.c in networking subsystem in the Linux Kernel.In this flaw, If it fails to clone of the input skb to hold the reference to the memory it uses may lead a use-after-free...
TencentOS Server 2: firefox (TSSA-2024:0242)
The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0242 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...
SUSE CVE-2021-47315
In the Linux kernel, the following vulnerability has been resolved: memory: fslifc: fix leak of IO mapping on probe failure On probe error the driver should unmap the IO memory. Smatch reports: drivers/memory/fslifc.c:298 fslifcctrlprobe warn: 'fslifcctrldev-gregs' not released on lines: 298...
USN-6779-1 firefox vulnerabilities
Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. CVE-2024-4767, CVE-2024-4768,...
SUSE CVE-2023-52455
In the Linux kernel, the following vulnerability has been resolved: iommu: Don't reserve 0-length IOVA region When the bootloader/firmware doesn't setup the framebuffers, their address and size are 0 in "iommu-addresses" property. If IOVA region is reserved with 0 length, then it ends up corrupti...
Xen elevation of privilege vulnerability (CNVD-2019-07942)
Xen is an open source virtual machine monitor developed by the Xen Project. An elevation of privilege vulnerability exists in 4.11.x and earlier versions of Xen on AMD x86 platforms, which stems from the fact that a TLB refresh is sometimes not performed after an IOMMU mapping change, and can be...